Overview

overview

7

Static

static

7

𝐯‌‌...at.apk

android-9-x86

𝐯‌‌...at.apk

android-10-x64

𝐯‌‌...at.apk

android-11-x64

𝐯‌‌/app.js

windows7-x64

1

𝐯‌‌/app.js

windows10-2004-x64

1

𝐯‌‌...min.js

windows7-x64

1

𝐯‌‌...min.js

windows10-2004-x64

1

𝐯‌‌...min.js

windows7-x64

1

𝐯‌‌...min.js

windows10-2004-x64

1

𝐯‌‌/kos.html

windows7-x64

1

𝐯‌‌/kos.html

windows10-2004-x64

1

𝐯‌‌...ger.js

windows7-x64

1

𝐯‌‌...ger.js

windows10-2004-x64

1

𝐯‌‌...ger.js

windows7-x64

1

𝐯‌‌...ger.js

windows10-2004-x64

1

payment/cs...eb.ps1

windows7-x64

1

payment/cs...eb.ps1

windows10-2004-x64

1

payment/cs...b.html

windows7-x64

1

payment/cs...b.html

windows10-2004-x64

1

payment/cs...d.html

windows7-x64

1

payment/cs...d.html

windows10-2004-x64

1

payment/cs...t.html

windows7-x64

1

payment/cs...t.html

windows10-2004-x64

1

payment/cs...m.html

windows7-x64

1

payment/cs...m.html

windows10-2004-x64

1

payment/cs...t.html

windows7-x64

1

payment/cs...t.html

windows10-2004-x64

1

payment/im...er.xml

windows7-x64

1

payment/im...er.xml

windows10-2004-x64

3

payment/im...go.xml

windows7-x64

1

payment/im...go.xml

windows10-2004-x64

3

payment/index.js

windows7-x64

1

Analysis

  • max time kernel
    135s
  • max time network
    132s
  • platform
    windows7_x64
  • resource
    win7-20230712-en
  • resource tags

    arch:x64arch:x86image:win7-20230712-enlocale:en-usos:windows7-x64system
  • submitted
    11-08-2023 01:16

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    payment/css/fonts/woff2/IRANSansWeb.html

  • Size

    30KB

  • MD5

    c6f46673e2449eb071e2c098c5190c2a

  • SHA1

    d9ba337d1d40aaeb82e51906ddaa0492239d291a

  • SHA256

    224e0a53fcc1456dbe75f0ae0bd200131609055790eaa109222ac0d0b8045a5d

  • SHA512

    785bb16b33546d5bb0d9b9c5cadd69c8e4016521541e1cceccf964abf3858cec6a232a42cd386f73bf513b6a549705faa4e6cc1676586f711d0ba8660cee7070

  • SSDEEP

    768:lF7mr8mz60mCTXpVIAQfwkj3TQMfWoqClQX4A:n7mr8me7sXpV2jDQglq

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\payment\css\fonts\woff2\IRANSansWeb.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2892
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2892 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2976

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0507f9b73c231190e72afe22672c6d0f

    SHA1

    49eb082b0714293ff4fac0441b96f5263f7e5125

    SHA256

    da8a4ca27cb1524766f0c7e6c4995e5bea27bf8fc2b15761807fb898ae5e469e

    SHA512

    7aa0ebb130994078c3071a43cd23f7a0a68eb60f7cf6c5752a152f9612058fdcc8a62c06a503bba26980f3639822e120e8d5c5b26e4fad7cdbbec62f57959600

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9225a25b0e500a1500a5b1db05a41a26

    SHA1

    1a6dcdf80e6f47766c2ab78c9eefb25085a10e3d

    SHA256

    ea710de669d40e0c4f46a414b3cbc5a6f63bf7bc61ac8461823f68de7723b7e4

    SHA512

    615920ce9408599a140b922a63e1609875befa95812cac5c141f1026db8924b12df089cae38b513046104990d9a8e68d00037125090345ec3ed7d71a49746293

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    efa5c5d4ab33b0bb285870acbf977321

    SHA1

    0674c25c6bb501057636e9d76a53489f86a49088

    SHA256

    1054d181ba25d5e6be4505c84ab89393d60b53c859e8ed1c3bba2c3c8c2f791c

    SHA512

    3f7c630e999c87e50f9648f2a9d7484e24d1b1892c7f8c71be6c45430ef7ebd469fa6b01e4b6608ce5ae661196345882fdeb0cc23a1a7fc8e2d24b0f932f50f4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    87cefd604d2f0e653a4e1d707e58d54c

    SHA1

    aee4e4f9821e9986a9a2b9de8ed2cafadde53860

    SHA256

    d0330545dd7bb37fe4dcb4a6b7375d25559e0c66eb29a5ed62b302617d9732c5

    SHA512

    301127de761a12297427e550cf3cf51fd9a6a6739a0533b800f6093f3f7c5caf931597130f255ce6aa41bcd942594e3028cff9ddaec089c8f8113ff024bfbd6f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f04dc71ba1d2310b9b0c864ed657174e

    SHA1

    b5c41fad002512ee176a0ef7a434f0d5d6a87ddc

    SHA256

    2381b54ebfe2b3bc566d52682e1d50f03e3bb2dab2142318b9efbf668d7c480b

    SHA512

    1b31556675b07beb69c25b26bb1114125765de16c53c5e745d15fb2c8b6bd3478f1c80ed008c4d5b5e7635c225b0f9d65d7fef45bc1e7528b340412c47be5a49

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c86c8021d6e48acba4a9f3519e1008c3

    SHA1

    f1964497249f40c35e2fa2482a1d661872b8b322

    SHA256

    c4f485cd7686b065f841616752c3d931d595c06a0be4472ab226b14028b7363c

    SHA512

    d321e59da6abec1447baecb0ce61cb197f0a9f540c7d9c5008d698c00fc8c10556dd6677aeb30b8ddf94512ba1c4e4b7f521191b8690479774bd95970e263f3c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    355fb9e1816fdf03d06d28c6d4a8d1ce

    SHA1

    22b27f5985f536e5bd233c5b9bd43f3eaacef721

    SHA256

    3e6a1cfbfd071ce7b81f0ef3333a8737ad4541d50bf30631af17bdeda5dfbaa4

    SHA512

    af3e304f4290048357e3c6b7a727448ece1d062b09f9913eb2842ca8d6d8ce7e72929e49288f6a3b3d17574c2920c86fefea3511457dbfe28fd09febe2ca47a7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    73099d767e999dcfd816c2a2390ea4a1

    SHA1

    7ec8ffcbfe5af61f730afc6c6b54bb9ef9fc6bc0

    SHA256

    ae5822718aafd4ac29cc9d59026dfe58c9342efd027e503dd86286f69c139ac2

    SHA512

    2da4ab6b5e339b26fd1fe30438b2427ad9ed9fe386a1605312e38d426692736271d969e0567e8e06b579ee1811878fa954d566822f507fabc3e0cef981c5a457

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    dcebc3937901931dccc10f127a4a9a0d

    SHA1

    83ebba6606c8a300f8183dbeb2f4023a40659323

    SHA256

    4ae7ee88567089f6c65a906daee8c1f0af2fb869af357e717acbde42346425f5

    SHA512

    a0c4bef6d8697a4265a7e5f7179bb0554c838e1b0ce2ba906ea9936f8398adbe8f7e5886e8d62e2b31c5eac6eaffc8470273eaebff5b61db7fe291235edb405d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e723a298b9d1ab5c8ca069bfcb4cbe57

    SHA1

    1e7c596278d421b7ee580ec60b9004cd76718986

    SHA256

    aa8845b1e64f61d399c0950ca32641f70753e9236f110e12e4ca408ce40bface

    SHA512

    444af5611aeffdd9120792132fb9c775ca15b397a70df3f564e399b3260218081f7f97c219be9e86d4031b85c1d95a632661c270b9719a3f641c3d4d47bece41

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    976d612f2d1687a8295e19ca5caf6abd

    SHA1

    9b85b4ac29cc8c03c7cee16ec8329838afee967c

    SHA256

    f2a13a4d7c35ab1ab7615e83472b6444ce456b23be8ee6040e73c5330f696843

    SHA512

    7030343257d631bcf6f8815064fc8f1a86258489ed9bd36728e119e03e9dfc3109e64a25f095248bbd0dff61ec7485ce52c8ebaf768518b46dcd3dfa3867d34f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ea10857c27ae640bf050b4be2f081357

    SHA1

    d2432617cd599f98597b514af640a07eec75c36b

    SHA256

    2ff2caddc282bd6e3f7f07b5800f16b90c8e4d30372a575b0e2f96892f0c9b72

    SHA512

    b7f10189d8dd5d770fc44aa6d0dc176a4537486bfa08adaba09798890fc8d0d0703f4cd8ef880e9b0eef5b1a04ebc6ef7028877302ab279795b68464c0caf653

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    00e115cb66f846ed6e9a802f29076b9a

    SHA1

    2028f6cf7d091d51ce3c96285d0c35e55de68d96

    SHA256

    5705e31d1d9549adfc352887fa588c721cc366f4b35975d8c30c0c31a6898e8d

    SHA512

    f6b2537666ce05bac8546f56eec312597878160f71d390160bcad688e36499b3b30eb256bfda7c8891db4cafbea99e550a59131fe6450c3ac52e9ac480c2c6eb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ac83c7fd919d21dffb310922f0a4d043

    SHA1

    bde213e03d5856ad0f129cbbc6efc2feb273180a

    SHA256

    d85d6c794d239e3d6eb4d954d7baad216d0b41aeda96a083c9acece3b9f59e5f

    SHA512

    2f89641b706cda90f684d13959e9729ea856a1df5d7061d217006980547cbd3351b3f4bd362af2d0f2c47e606b0cddef8b6ae342e1f63a48814eab52bf7e5dc8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e5ca7f37e4f2ffaa38ddddacd490614f

    SHA1

    f994b485e08ad545897b2cab8fb488a65ff24db3

    SHA256

    2e3c88bf4e098666bd50bc740677e2f79cdcefdfa75545edc28f02264cbfafb4

    SHA512

    b7061e57f444a50cca6b32b4d3ae99668666d8eefae8c2f35842b41d51ce4ae8b7b80a51cb32530382aa0dc7f1bf5bf3e20a27ab0b419119c2d2abce8e76296c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e7f89dafd07dab9d80a98e6549227855

    SHA1

    cad27e5ed76481c37152c5ea3f87944922e06b61

    SHA256

    9529aebbb978e07da8133bb9f399065ac1938bd020fd4de7e261ea2698a624c2

    SHA512

    a6ce04e1f8086d4ce4e00c8c1bb70439931d155e15f907cfef674315627f8141d9ebff3238a7d01811d242385f971866318d7197f369c988c9ecf04cf1e908d8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    634d0625637a057720103a7190ea2af1

    SHA1

    0a751d33b7740e5022cd558529cc0376a8ea462a

    SHA256

    80261d8cb5c552dcc04197110208b6f43d50650d5e31fb90fe138537b5f74ed6

    SHA512

    f66678ceb9fc9d25364a8a0fe497ea6cc41144237e843ecd174788a977797b4e72c5c108da01c5617dc2dd4e21e873972f4c73dd77d625acc54ecd4f163b7445

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5e35ca13a6cb686b419f0309ee680c56

    SHA1

    ea1be7d36f75ff6382090d920a13af86f24e6b8a

    SHA256

    0a03da9467040eaece6891654311063adb1302f9b6c0f077142cb805905a7c0d

    SHA512

    378120beffe709e0aa5745fd0054c7b35714c6e2d7c57754305f69dd8a0e653b69f19e58f2f1f67916070c8174d7320364bcdee6c18f36aaf0db0e1c464c30d4

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab8920.tmp
    Filesize

    62KB

    MD5

    3ac860860707baaf32469fa7cc7c0192

    SHA1

    c33c2acdaba0e6fa41fd2f00f186804722477639

    SHA256

    d015145d551ecd14916270efad773bbc9fd57fad2228d2c24559f696c961d904

    SHA512

    d62ad2408c969a95550fb87efda50f988770ba5e39972041bf85924275baf156b8bec309ecc6409e5acdd37ec175dea40eff921ab58933b5b5b5d35a6147567c

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar8990.tmp
    Filesize

    164KB

    MD5

    4ff65ad929cd9a367680e0e5b1c08166

    SHA1

    c0af0d4396bd1f15c45f39d3b849ba444233b3a2

    SHA256

    c8733c93cc5aaf5ca206d06af22ee8dbdec764fb5085019a6a9181feb9dfdee6

    SHA512

    f530dc0d024a5a3b8903ffaaa41b608a5ccdd6da4ba1949f2c2e55a9fca475fec5c8d2119b5763cabe7ef1c3788fb9dcac621869db51d65b1d83cfe404fb4c27

    Download Submit